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ABSTRACT 



A technique for combining biometric identification with 
digital certificates for electronic authentication called bio- 
metric certificates. The technique includes the management 
of biometric certificates through the use of a biometric 
certificate management system. Biometric certificates may 
be used in any electronic transaction requiring authentica- 
tion of the participants. Biometric data is pre-stored in a 
biometric database of the biometric certificate management 
system by receiving data corresponding to physical charac- 
teristics of registered users through a biometric input device. 
Subsequent transactions to be conducted over a network 
have biometric certificates generated from the physical 
characteristics of a current user, which is then appended to 
the transaction, and which then authenticates the user by 
comparison against the pre-stored biometric data of the 
physical characteristics of users in the biometric database. 

26 Claims, 3 Drawing Sheets 
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SYSTEM AND METHOD FOR 
AUTHENTICATING ELECTRONIC 
TRANSACTIONS USING BIOMETRIC 
CERTIFICATES 

this application claim benefit to Provisional application 
60/046,012 filed May 9, 1997 which claim benefit to Pro- 
visional application 60/055,534 filed Aug. 13, 1997. 

BACKGROUND OF THE INVENTION 

1. Field of the Invention 

This disclosure relates generally to the field of secure 
communications, and in particular to the issuance and man- 
agement of certificates for authenticating messages. 

2. Description of Related Art 

The use of computer networks and telecommunication 
systems for various transactions has markedly increased in 
recent years. Traditional transactions such as shopping, 
purchasing, banking, and investment services have experi- 
enced growth in new directions due to the application of 
computers and telecommunications. 

While traditional transactions have heretofore been con- 
ducted typically on a person-to-person basis, many 
telecommunication-based transactions are conducted 
remotely and sight-unseen; i.e. the participants in 
telecommunication -based transactions may never meet. 

With such telecommunication -based transactions, there is 
an increasing need to recognize and verify the authenticity 
of a remote user of electronic services, including such 
services involving consumers of all types of electronic 
transactions such as purchases over the Internet, home 
banking, electronic transfers of funds, and electronic bro- 
kerage services. Such electronic transactions may also 
involve users of remote repositories of data, for example, to 
access classified records, medical records, billing records, 
and unclassified but sensitive data, such as company records. 
Other relevant areas requiring adequate or even absolute 
security include authentication of signers of electronic docu- 
ments such as contracts. In general, any electronic service of 
value, provided over a local network or a public network, 
requires authentication of the requester in order to protect 
the value of the service. More valuable services typically 
require a greater degree of authentication. 

Historically, access to electronic services has been pro- 
vided through identification techniques such as account 
names and authentication techniques such as personal iden- 
tification numbers (PINs) and passwords. Such authentica- 
tion techniques have not proven to be very secure since PINs 
and passwords axe often easily guessed, hard to remember, 
or subject to discovery by exhaustive automated searches. 
Recently, digital certificates have emerged as a leading 
candidate for authenticating electronic transactions. 

Ideally, a digital certificate, such as those defined by the 
X.509 and ANSI X.9 standards, allows users or buyers and 
sellers to authenticate electronic documents and electronic 
transactions in a manner analogous to the authentication of 
documents by a Notary Public in person-to-person transac- 
tions. The combination of cryptographic techniques, includ- 
ing public key cryptography, and the use of digital certifi- 
cates provides greater integrity, privacy and a degree of 
authentication for on-line electronic transactions which 
instills a greater level of confidence in the electronic services 
consumer. 

For example, such authenticating certificates in the prior 
art may be generated by concatenating a message and a 
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public key with a set 10 of data as shown in FIG. 1, which 
may be in a sequence and which may include a unique 
subject ID 12 corresponding to the subject; that is, the 
individual or entity such as a corporation, having the public 

5 key. As shown in FIG. 1, other fields in the set 10 of data 
may include a version number, a serial number for the 
certificate with respect to a sequence of generated 
certificates, the name of the issuer, a validity period to 
determine an expiration of validity of the certificate, a 

10 subject name identifying the user or individual sending the 
transaction, a unique issuer ID number, and other data 
extensions indicating privileges and attributes of the 
certificate, such as access privileges. 

The unique subject ID 12 of the user may include M bits 

15 representing, for example, a social security number or a 
password associated with the user sending the transaction. 
Topically, M-50 bits~6 bytes or less. 

The authenticating certificate, being the concatenation of 
the set 10 of data with the public key and the transaction 

20 data, is then processed, for example, using a hash function 
such as a one-way hashing function, to generate a hashed 
value. The hashed value is then signed; that is, encrypted, 
using the private key of the user to generate a digital 
signature 14. The digital signature 14 is then appended to the 

25 authenticating certificate and the message, such as an elec- 
tronic transaction, for transmission over, for example, a 
network. 

The X.509 and ANSI X.9 standards described above 

3Q incorporate a hash function to generate unique digital sig- 
natures 14 from a respective set 10 of data. Such one-way 
hashing functions enable the transaction data to be compu- 
tationally infeasible to derive solely from the hash value. 
While the use in the prior art of authenticating certificates 

35 incorporating digital certificates improves transactions 
employing electronic authentication, it still falls short of 
actually authenticating a human transactor, such as a con- 
sumer. Instead, such digital certificates in the prior art only 
authenticate the private cryptographic key used in the trans- 

40 action or signature. Since private keys are physically stored 
on computers and/or electronic storage devices, such private 
keys are not physically related to the entities associated with 
the private keys. For example, a private key is assigned to an 
entity, which may be a group of people, an organization such 

45 as a company, or even groups of organizations, and so 
private keys are not limited to actual human individuals. 

Identification indicia of individuals may be subdivided 
into two broad categories: indicia based on the physical 
characteristics of the individual, that is, what the individual 

50 is; and indicia based on assigned information, that is, what 
another individual has associated with the identified 
individual, or what the identified individual chooses with 
which to be associated. The first category having physical 
indicia relates to the biometric data of an individual, and 

55 includes characteristic features such as genetic composition, 
fingerprints, hand geometry, iris and retinal appearance, etc., 
which are unique to each individual, with known exceptions 
such as the identical genetic compositions of twins. 

The second category having assigned indicia includes 

60 information which the individual knows and/or is charged 
with memorizing and divulging for authentication, such as 
social security number, mother's maiden name, access codes 
such as long distance calling card numbers, and personal 
passwords. The second category also includes information 

65 and/or objects which the individual owns and/or is charged 
with carrying and divulging for authentication, such as 
driver's licenses and passports. 
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Private keys are assigned indicia. Accordingly, the lack of 
physical identification of a human transactor with a private 
key is a flaw in authentication techniques in the prior art 
using such private keys. Other authentication and security 
techniques in the prior art are similarly flawed, since many 5 
authentication and security techniques rely on identification 
indicia of the second category. 

Techniques are known in the art for authenticating an 
individual based on identification indicia of the first cat- 
egory; that is, by physical characteristics. For example, U.S. 1Q 
Pat. No. 4,641,349 to Flom et al. discloses a system for 
performing iris recognition. Typically, such physical char- 
acteristics identifying techniques require complicated com- 
putational operations for the capture and accurate classifi- 
cation of physical characteristics, since such physical 
characteristics are unique to each individual. Accordingly, 15 
the identification indicia for such physical characteristics 
generally requires a relatively large amount of memory to 
store and classify such identification indicia. 

Heretofore, the relatively large computational demands of 
authentication techniques based on physical characteristics 20 
has prevented such authentication techniques from being 
implemented in electronic transactions, 

SUMMARY OF THE INVENTION 

It is recognized herein that the application of biometric 25 
identification and classification techniques to the authenti- 
cation of electronic transactions provides for increased secu- 
rity and accuracy. 

A biometric certification system and method are disclosed 
herein which implements an end-to-end security mechanism 30 
binding the biometric identification of consumers with digi- 
tal certificates. The biometric certification system authenti- 
cates electronic transactions involving a user, and includes a 
biometric input device which responds to a set of physical 
characteristics of the user, and generates corresponding first 35 
biometric data related to the physical condition of the user. 
A hash function generator receives the first biometric data 
and generates a hash value signal from the first biometric 
data. 

A registration authority generates a digital biometric 40 
certificate signal from a private key signal and from the hash 
value signal which incorporates the first biometric data. An 
electronic transaction generator responds to the digital bio- 
metric certificate signal and to transaction data to generate a 
data signal corresponding to the electronic transaction to be 45 
transmitted over a network. A receiver responds to the data 
signal received from the network and operates to extract the 
digital biometric certificate signal. 

A biometric certification management system certifies the 
electronic transaction as being from the user, with the 50 
biometric certification management system including: a bio- 
metric data extractor which responds to the digital biometric 
certificate to isolate the first biometric data from the digital 
biometric certificate signal; and a classifier which responds 
to the first biometric data and to second biometric data 55 
retrieved from a biometric database and corresponding to the 
user. The classifier operates to compare the first biometric 
data to the second biometric data, and to generate an 
authentication decision signal corresponding to the compari- 
son of the first and second biometric data. The receiver 60 
responds to the authentication decision and processes the 
electronic transaction as being authentic from the user or as 
being fraudulent. 

BRIEF DESCRIPTION OF THE DRAWINGS 65 

The features of the disclosed biometric certification sys- 
tem and method are readily apparent and are to be under- 
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stood by referring to the following detailed description of 
the preferred embodiments of the present invention, taken in 
conjunction with the accompanying drawings, in which: 

FIG. 1 illustrates an authenticating certificate in the prior 
art; 

FIG. 2 illustrates a biometric certificate of the disclosed 
biometric certification system and method; and 

FIGS. 3^4 are block diagrams of the disclosed biometric 
certification system. 

DESCRIPTION OF THE PREFERRED 
EMBODIMENTS 

Referring in specific detail to the drawings, with common 
reference numbers identifying similar or identical elements, 
steps, and features, as shown in FIG. 2 the present disclosure 
describes a biometric certification system and method for 
generating biometric certificates from a set 16 of data, 
including a unique subject ID 18 and biometric data 20. A 
digital signature 22 generated using the biometric data 20 as 
described below is appended to the set 16 of data to form the 
biometric certificate, as shown in FIG. 2. 

The disclosed biometric certification system 24 is shown 
in FIGS, 3-4. It has a set of input devices, including a 
biometric input device 26, a user data input device 28, and 
a transaction data input device 30. The biometric input 
device 26 generates first biometric data from the physical 
characteristics of the user, such as fingerprints, hand 
geometry, iris and retinal appearance, and speech patterns. 

The biometric input device 26 may include visual cameras 
and/or other visual readers to input fingerprints, hand 
geometry, iris appearance, and retinal appearance. For 
example, companies such as IDENTIX, FUJITSU, and 
AUTHENTEC provide such equipment for reading 
fingerprints, while RECOGNITION SYSTEMS provides 
equipment to read hand geometry. EYE-DENTIFY is an 
example of a company which provides retinal imaging 
devices, while IRISCAN and SENSAR are examples of 
companies which provide iris imaging devices. 

Alternatively, the biometric input device 26 may be 
adapted to receive audio characteristics of a user. For 
example, a microphone in conjunction with a speech digi- 
tizer may be used to receive and digitize speech. Such 
companies as BBN, T-NETIX, and ALPHA-TEL provide 
such equipment for receiving and digitizing speech to gen- 
erate corresponding biometric data. 

Biometric input devices known in the art may be used to 
receive other physical characteristics such as facial and body 
appearance via, for example, a camera, as well as the genetic 
composition of the user by means of genetic material 
gathering procedures, such as blood lancets. 

The biometric certificate as shown in FIG. 2 may be 
generated by concatenating transaction data, a public key, 
and the set 16 of data, including the biometric data 20, using 
a first concatenator 32, which may be embodied as an adder. 
The transaction data is received from the transaction data 
input device 30 corresponding to the electronic transaction 
such as an electronic funds transfer. The set 16 of data is 
input through the user data input device 28 which may be in 
a sequence, as shown in FIG. 2, and which may include a 
unique subject ID 18 corresponding to the subject; that is, 
the individual or entity such as a corporation, having the 
public key. The set 16 of data also includes various other 
fields described above with respect to FIG. 1. 

The biometric data 20 is obtained directly from the 
physical characteristics of the subject through the biometric 
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input device 26. The unique subject ID 18 of the user may devices. Such classification methods for authentication of 

include M bits, in which typically M-50 bits-6 bytes or less, images and data sequences using neural networks are 

while the biometric data 20 typically includes much more described, for example, in U.S. Pat. No. 5,619,620 to Eccles, 

data than the unique subject ID 18. Generally, the biometric which is incorporated herein by reference, 

data 20 has N bits in which N is about 64 bits or more; that 5 The classifier 52 then generat 6s an authentication 

is, about 6 bytes or more. In fact, the amount of the biometric decision, which may be logic values corresponding to YES 

data 20 is unlimited; for example, a fingerprint may be or NOj or rauE or FALSE, indicating verification of the 

visually scanned to any resolution to obtain key fingerprint authenticity of the user sending the electronic transaction, 

aspects which uniquely distinguish fingerprints, or alterna- Alternatively, the authentication decision may be a numeri- 

hvely to obtain data representing pixels of the entire finger- 10 caJ value> for example, corresponding to a percentage of 

print. Accordingly, the biometric data 20 may require large confidence of authenticity. 

amounts of memory for storage such as 2 kB or even 4 MB. ^ . , , , 

Accordingly, in the preferred embodiment, N is much . The receiver 44 then responds to the authentication deci- 

greater than M S10n to P rocess me electronic transaction; for example, an 

„ - " . .„ , . . „ ^ electronic funds transfer. The receiver 44 may include a 

THe authenticating certificate being the concatenation of 15 determined threshold of for { 9g% authenticit 

the set 16 of data including the biometric data 20, with the t0 be exceeded in order t0 d ^ the proccssing of th ; 

public key and the transaction data, is then processed, for electronic transaction, 
example, using a hash function 34, such as a one-way 

hashing function, to generate a hashed value. RSA and Usin S ^metric certificates, cross-over error rates for 

SHA-1 are examples of public key cryptographic methods 20 identification and authentication may be below about 2.0%, 

and one-way hashing which may be used for such encryp- and ma 7 even J be 35 low as about 05% ' ^ a PP lication of 

tion and hashing functions. The RSA method is described, more advanced biometnc input devices 26 and classifiers 52 

for example, in U.S. Pat. No. 4,405,829 to Rivest et al., known "? the art ma y obtain substantiaI1 Y P er fect authenti- 

which is incorporated herein by reference. The SHA-1 catlon of an y individual from the ^bz\ population, 

method is described, for example, in U.S. Pat. No. 5,623,545 25 The disclosed biometric certification system 24 and 

to Childs et al., which is incorporated herein by reference. method may include electronic transactions using a network 

The hashed value is then sent to a registration authority as described in commonly assigned U.S. Pat. application No. 

(RA) 36 having a biometric certificate generator 38, in 08/770,824, filed Dec. 20, 1996 and entitled "VIRTUAL 

which the hashed value is signed; that is, encrypted, using CERTIFICATE AUTHORITY, which is incorporated herein 

the private key of the user to generate a digital signature 22, 30 h ^ reference. Such a svstem can be adapted to include the 

incorporating the biometric data 20. Using a second con- use of blometnc certificates as described herein for crypto- 

catenator 40, which may be an adder circuit, the digital graphically binding the biometric data of a user with iden- 

signature 22 is then appended to the transaction data from tification information to form such biometric certificates, 

the transaction data input device 30 for transmission over, ^ use of P ubhc ke V technology allows the transaction/ 

for example, a network 42 or the Internet. 35 S1 g nature authentication process to be done either centrally 

Referring to FIG. 4, after receiving the electronic trans- ° r rem0tely ' de P endin 8 u P on lhe needs of the transaction, 

action from the network 42, a receiver 44 decrypts the ^ disclosed biometric certification system 24 and 

electronic transaction using its private key, de-hashes the method may also be used for authenticating such crypto- 

decrypted electronic transaction using an inverse 45 of the graphic binding at the time of the electronic transaction or 

hash function 34, and extracts the biometric certificate 46 40 durin g electronic signature verification, 

from the de-hashed data using a biometric certificate extrac- Prior to use of the disclosed biometric certification system 

tor 46, which may be an adder or a sub tractor circuit for 24 and method, the biometric database 54 is built using, for 

separating the biometric certificate from the rest of the data. example, a registration process in which individuals are 

The receiver 44 then sends the biometric certificate to a 45 required to provide proof of identity; that is, identification 

biometric certificate management system (BCMS) 48 for information such as a birth certificate, a driver's license, 

authentication thereof. The BCMS includes a biometric data current bank account data, credit card account data, etc. to 

extractor 50 which extracts the first biometric data from the b e provided to the registration authority 36. Once the RA 36 

biometric certificate. The biometric data extractor 50 may be is satisfied with such proof, the identification information is 

an adder or a subtractor circuit, which then applies to a 50 entered into the BCMS. 48, and biometric measurement is 

classifier 52 the first biometric data allegedly corresponding then taken concurrently using at least one biometric input 

(before authentication) to the user. device 26. 

The BCMS 48 also accesses a biometric database 54 to Such stored biometric measurements form the pre-stored 

obtain pre-stored biometric data from registered users iden- biometric data in the biometric database 54 which corre- 

tified by the user data, such as the unique subject ID 18 5s sponds to the pre-registered individuals who have undergone 

provided in the biometric certificate 20. After obtaining the registration process described above. Accordingly, pre- 

second biometric data corresponding to the user,-the BCMS registered individuals may be properly authenticated, while 

48 applies the second biometric data to the classifier 52 for unregistered individuals are rejected, within the cross-over 

classification with respect to the first biometric data. error rate. 

The classifier 52 may be a comparator, or alternatively a 60 While the disclosed biometric certification system and 
software routine or other hardware/software devices imple- method is particularly shown and described herein with 
menting data matching techniques, for comparing the bio- reference to the preferred embodiments, it is to be under- 
metric data to obtain a decision value. Alternatively, the stood that various modifications in form and detail may be 
classifier 52 may be a trained neural network 53 and/or a made therein without departing from the scope and spirit of 
fuzzy logic classifier for classifying whether or not, within 65 the present invention. Accordingly, modifications, such as 
an error tolerance, the first and second biometric data were any examples suggested herein, but not limited thereto, are 
obtained from the same individual using biometric input to be considered within the scope of the present invention. 
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What is claimed is: 

1. A system for authenticating electronic transactions 
involving a user, comprising: 

a transaction input device configured to receive transac- 
tion data relating to an electronic transaction; 5 

a biometric input device configured to generate biometric 
data corresponding to a physical condition of the user; 

a biometric certificate generator configured to generate a 
biometric certificate from the transaction data, the 1Q 
biometric data, and a public key corresponding to the 
user; 

a hash function generator configured to generate a hash 
value signal from the biometric certificate using a hash 
function; 15 

a registration authority configured to generate a biometric 
digital signature from the hash value signal and a 
private key corresponding to the user; 

an electronic transaction generator configured to generate 
a transaction signal, corresponding to the electronic 20 
transaction to be transmitted over a network, from the 
biometric digital signature and the transaction data; 

a receiver configured to receive the transaction signal 
from the network and process the received transaction 
signal to extract the biometric certificate; and 

a biometric certificate management system configured to 
certify the electronic transaction as being from the user, 
including: 

a biometric data extractor configured to isolate the bio- 30 
metric data from the extracted biometric certificate, and 

a classifier configured to retrieve pre-registered biometric 
data corresponding to the user from a biometric 
database, compare the biometric data to the pre- 
rcgistered biometric data, generate an authentication 35 
decision signal based on the comparison, and provide 
the authentication decision signal to the receiver to 
permit the receiver to determine whether the electronic 
transaction involves the user. 

2. The system of claim 1, wherein the biometric input 40 
device includes at least one of: 

an iris reader configured to obtain a visual image of an iris 
of the user, 

a hand geometry reader configured to obtain a visual 

image of a geometry of a hand of the user, 45 
a retinal reader configured to obtain a visual image of a 

retina of the user, 
a facial reader configured to obtain a visual image of a 

face of the user, 
a body information extractor configured to obtain body 

data from the user, and 
a sound transducer configured to capture speech from the 

user. 

3. The system of claim 1, wherein the biometric certificate 55 
generator includes: 

a concatenator configured to combine the transaction data, 
the biometric data, and the public key to form the 
biometric certificate. 

4. The system of claim 3, wherein the concatenator 60 
includes an adder. 

5. The system of claim 1, wherein the hash function 
generator is configured to subject the biometric certificate to 
a one-way hashing function to form the hash value signal. 

6. The system of claim 1, wherein the registration author- 65 
ity is configured to encrypt the hash value signal using the 
private key to generate the biometric digital signature. 
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7. The system of claim 1, wherein the electronic transac- 
tion generator includes: 

a concatenator configured to combine the biometric digi- 
tal signature and the transaction data to form the 
transaction signal. 

8. The system of claim 7, wherein the concatenator 
includes an adder. 

9. The system of claim 1, wherein the electronic transac- 
tion generator is further configured to transmit the transac- 
tion signal over the network. 

10. The system of claim 1, wherein the receiver is 
configured to decrypt the received transaction signal using a 
private key. 

11. The system of claim 1, wherein the receiver is 
configured to subject the received transaction signal to an 
inverse of the hashing function. 

12. The system of claim 1, wherein the receiver is 
configured to decrypt the received transaction signal and to 
subject the decrypted transaction signal to an inverse of the 
hashing function. 

13. The system of claim 1, wherein the classifier includes 
one of a neural network, a fuzzy logic classifier, and a 
processor. 

14. A system for authenticating electronic transactions 
involving a user, comprising: 

means for receiving transaction data relating to an elec- 
tronic transaction; 

means for obtaining biometric data corresponding to a 
physical condition of the user; 

means for generating a biometric certificate from the 
transaction data, the biometric data, and a public key 
corresponding to the user; 

means for generating a hash value signal from the bio- 
metric certificate using a hash function; 

means for generating a biometric digital signature from 
the hash value signal and a private key corresponding 
to the user; 

means for generating a transaction signal, corresponding 
to the electronic transaction, from the biometric digital 
signature and the transaction data; 

means for processing the transaction signal to extract the 
biometric certificate; 

means for isolating the biometric data from the extracted 
biometric certificate; 

means for retrieving pre-registered biometric data corre- 
sponding to the user from a biometric database; 

means for comparing the biometric data to the pre- 
registered biometric data to generate an authentication 
decision signal based on the comparison; and 

means for identifying the electronic transaction as one of 
authentic from the user and fraudulent. 

15. A method for authenticating electronic transactions 
involving a user, comprising: 

receiving transaction data relating to an electronic trans- 
action; 

obtaining biometric data corresponding to a physical 
condition of the user; 

generating a biometric certificate from the transaction 
data, the biometric data, and a public key correspond- 
ing to the user; 

generating a hash value signal by processing the biometric 
certificate using a hash function; 

generating a biometric digital signature from the hash 
value signal and a private key corresponding to the 
user; 
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generating a transaction signal, corresponding to the 
electronic transaction, from the biometric digital sig- 
nature and the transaction data; 

processing the transaction signal to extract the biometric 
certificate; 5 

isolating the biometric data from the extracted biometric 
certificate; 

retrieving pre-registered biometric data corresponding to 
the user from a biometric database; 

comparing the biometric data to the pre-registered bio- 
metric data to generate an authentication decision sig- 
nal based on the comparison; and 

determining whether the electronic transaction involves 
the user based on the authentication decision signal, is 

16. The method of claim 15, wherein the obtaining 
includes: 

capturing at least one of a visual image of an iris of the 
user, a visual image of a geometry of a hand of the user, 
a visual image of a retina of the user, a visual image of 20 
a face of the user, body data from the user, and speech 
from the user. 

17. The method of claim 15, wherein the generating a 
biometric certificate includes: 

combining the transaction data, the biometric data, and 25 
the public key to form the biometric certificate. 

18. The method of claim 15, wherein the generating a 
hash value signal includes: 

subjecting the biometric certificate to a one-way hashing 3Q 
function. 

19. The method of claim 15, wherein the generating a 
biometric digital signature includes: 

encrypting the hash value signal using the private key. 

20. The method of claim 15, wherein the generating a 35 
transaction signal includes: 

combining the biometric digital signature and the trans- 
action data to form the transaction signal. 

21. The method of claim 15, wherein the processing the 
transaction signal includes: 40 

decrypting the transaction signal using a private key. 

22. The method of claim 15, wherein the processing the 
transaction signal includes: 

subjecting the transaction signal to an inverse of the 
hashing function. 45 

23. The method of claim 15, the processing the transaction 
signal includes: 

decrypting the transaction signal, and 
subjecting the decrypted transaction signal to an inverse 50 
of the hashing function. 

24. A method for generating an electronic transaction 
involving a user, comprising: 

receiving transaction data relating to an electronic trans- 
action; 55 

obtaining biometric data corresponding to a physical 
condition of the user; 



generating a biometric certificate from the transaction 
data, the biometric data, and a public key correspond- 
ing to the user; 

generating a hash value signal from the biometric certifi- 
cate using a hash function; 

encrypting the hash value signal, using a private key 
corresponding to the user, to form a biometric digital 
signature; 

generating a transaction signal, corresponding to the 
electronic transaction, by appending the biometric digi- 
tal signature to the transaction data; and 

transmitting the transaction signal over a network for 
authentication of the electronic transaction. 

25. A method for authenticating an electronic transaction 
involving a user, comprising: 

receiving a transaction signal from a network, the trans- 
action signal including transaction data relating to an 
electronic transaction and a biometric digital signature, 
the biometric digital signature including a hash value 
signal encrypted using a private key corresponding to 
the user, the hash value signal including the transaction 
data, biometric data obtained from the user and corre- 
sponding to a physical condition of the user, and a 
public key corresponding to the user subjected to a 
hashing function; 

decrypting the received transaction signal using a private 
key; 

de-hashing the decrypted transaction signal using an 
inverse of the hashing function; 

isolating the biometric data from the de-hashed transac- 
tion signal; 

retrieving pre-registered biometric data corresponding to 
the user from a biometric database; 

comparing the biometric data to the pre-registered bio- 
metric data to generate an authentication decision sig- 
nal based on the comparison; and 

identifying the electronic transaction as one of authentic 
from the user and fraudulent based on the authentica- 
tion decision signal. 

26. An electronic transaction stored in a computer- 
readable medium, comprising: 

transaction data corresponding to a transaction performed 
by a user; and 

a biometric digital signature including a hash value signal 
encrypted using a private key corresponding to the user, 
the hash value signal including the transaction data, 
biometric data obtained from the user and correspond- 
ing to a physical condition of the user, and a public key 
corresponding to the user subjected to a hashing func- 
tion. 
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